## https://sploitus.com/exploit?id=DA83ECD9-94B8-5C24-A91C-C40534925707
# CVE-2020-8158: TypeORM Prototype Pollution Vulnerability
## Overview
This is a proof-of-concept demonstrating CVE-2020-8158, a critical prototype pollution vulnerability in TypeORM versions = 0.2.25)
- `package.json` - Dependencies
## Setup Instructions
See `SETUP.md` for detailed setup and exploitation instructions.
## Mitigation
- Upgrade TypeORM to version 0.2.25 or later
- Validate and sanitize all user inputs
- Use input validation libraries to block prototype pollution attempts
- Consider using Object.freeze() on critical objects
## References
- Official TypeORM Security Advisory
- OWASP Prototype Pollution
- CWE-1321: Improperly Controlled Modification of Object Prototype Attributes